Description
Start date: Negotiable
Location: Strasbourg, France
Conditions: Hybrid Model (Based within 2 hour radius from Strasbourg)
Requirements:
University Degree in Cybersecurity, Computer Science or related field and minimum 10 years of professional experience in cybersecurity, information security, or secure systems engineering within complex environments.
Proven expertise in security standards, frameworks, and compliance requirements (e.g., ISO 27001, NIS/NIS2, GDPR, or similar public sector frameworks).
Strong knowledge of security technologies and identity protocols: SSL/TLS, X.509, SAML, OAuth, OpenID Connect, JWT, AWS KMS, KMIP, PKCS#11, including digital certificates and hardware security modules (HSMs).
Solid understanding of cryptographic principles and algorithms: AES, GCM, PBKDF2, HMAC, SHA-2.
Advanced knowledge of network security and architecture including next-generation firewalls and web application firewalls (e.g., Fortigate, Imperva), TCP/IP, IPSec, HTTP/HTTPS, routing, firewalls, routers, and switches.
Proficiency in Linux/Unix systems, system hardening, operating system security, and secure configuration practices.
Experience with secure software development lifecycle (SDLC), programming/scripting, and automation in security contexts.
Experience securing large-scale, complex environments (e.g., data centres, government systems, cloud and hybrid infrastructures).
Strong communication skills in English, knowledge of French is an advantage.
Duties & Day-Day:
Design, implement, maintain, and continuously improve cybersecurity solutions protecting government systems and critical infrastructure using modern security technology stacks.
Integrate and securely configure security controls in line with organizational policies, EU regulations, and public sector standards.
Monitor, evaluate, and investigate security controls and events, including security event analysis and SIEM tooling (e.g., Splunk investigations).
Identify, analyze, and remediate vulnerabilities and incidents, including patching, system hardening, and certificate and cryptographic asset management.
Ensure the security and resilience of systems across on-premise, cloud, and hybrid environments, including high-availability infrastructures.
Implement and enforce cybersecurity policies, procedures, and controls aligned with governance, risk, and compliance (GRC) frameworks.
Develop scripts, tools, and automation to enhance security monitoring, detection, and response capabilities.
Produce technical documentation, risk assessments, and audit reports; communicate findings to stakeholders and management.
Collaborate with internal teams, external providers, and public sector bodies; provide cybersecurity expertise and user support.
Location: Strasbourg, France
Conditions: Hybrid Model (Based within 2 hour radius from Strasbourg)
Requirements:
University Degree in Cybersecurity, Computer Science or related field and minimum 10 years of professional experience in cybersecurity, information security, or secure systems engineering within complex environments.
Proven expertise in security standards, frameworks, and compliance requirements (e.g., ISO 27001, NIS/NIS2, GDPR, or similar public sector frameworks).
Strong knowledge of security technologies and identity protocols: SSL/TLS, X.509, SAML, OAuth, OpenID Connect, JWT, AWS KMS, KMIP, PKCS#11, including digital certificates and hardware security modules (HSMs).
Solid understanding of cryptographic principles and algorithms: AES, GCM, PBKDF2, HMAC, SHA-2.
Advanced knowledge of network security and architecture including next-generation firewalls and web application firewalls (e.g., Fortigate, Imperva), TCP/IP, IPSec, HTTP/HTTPS, routing, firewalls, routers, and switches.
Proficiency in Linux/Unix systems, system hardening, operating system security, and secure configuration practices.
Experience with secure software development lifecycle (SDLC), programming/scripting, and automation in security contexts.
Experience securing large-scale, complex environments (e.g., data centres, government systems, cloud and hybrid infrastructures).
Strong communication skills in English, knowledge of French is an advantage.
Duties & Day-Day:
Design, implement, maintain, and continuously improve cybersecurity solutions protecting government systems and critical infrastructure using modern security technology stacks.
Integrate and securely configure security controls in line with organizational policies, EU regulations, and public sector standards.
Monitor, evaluate, and investigate security controls and events, including security event analysis and SIEM tooling (e.g., Splunk investigations).
Identify, analyze, and remediate vulnerabilities and incidents, including patching, system hardening, and certificate and cryptographic asset management.
Ensure the security and resilience of systems across on-premise, cloud, and hybrid environments, including high-availability infrastructures.
Implement and enforce cybersecurity policies, procedures, and controls aligned with governance, risk, and compliance (GRC) frameworks.
Develop scripts, tools, and automation to enhance security monitoring, detection, and response capabilities.
Produce technical documentation, risk assessments, and audit reports; communicate findings to stakeholders and management.
Collaborate with internal teams, external providers, and public sector bodies; provide cybersecurity expertise and user support.